
Nordic CISO Community
Executive Summit
7 May 2024 | Elite Marina Tower, Stockholm
7 May 2024
Elite Marina Tower, Stockholm
Collaborate with your peers
Get together with Nordic's top CISOs to tackle shared business challenges and critical priorities facing your role today. Participate in this one-day, local program with peer-driven topics and interactive discussions with your true C-level peers.
Join your peers to discuss the most critical issues impacting CISOs today:
Create Alignment with Business to Demonstrate IT & Security’s True Value
Unlock AI’s Potential through Trust, Leadership Buy-In and Governance
Enhance Resiliency to Mitigate Risk
Nordic CISO Governing Body
The Governing Body Co-Chairs shape the summit agenda, ensuring that all content is driven By CISOs, For CISOs®.
Governing Body Co-Chairs

Mirela Bønløkke
Rambøll
Head of Cyber and Information Security & CISO

Lars Falch
Novo Nordisk
CISO, Global information Security

Torstein Gimnes Are
Norsk Hydro
CISO

Bjørn Watne
Telenor Group
SVP & CSO
What to Expect
Agenda
08:00 - 09:00 Registration & Breakfast
09:00 - 09:45 Keynote
Reshaping Developer Effectiveness with Backstage

Tyson Singer
Head of Technology and Platforms
Spotify
As Spotify grew, so did their engineering organisation and technology infrastructure. Rapid growth led to increasing complexity which slowed down developer productivity across R&D. Spotify’s platform engineering team realised that to continue innovating at the desired pace, whilst providing exceptional audio experiences to their 602 million users, they needed to free their developers from the chaos. Tyson Singer, Spotify’s Head of Technology and Platforms, shares how their homegrown developer portal, Backstage, helped restore order by fixing the problem at the source: improving the everyday experience of developers.
Join this session to learn:
- How Backstage empowers developers, enabling them to collaborate and build quality software at scale
- Why open sourcing the Backstage framework and collaboration with the CNCF (Cloud Native Computing Foundation) led to the developer portal standard
- How developer portals built on the Backstage open source framework boost productivity by prioritising developer experience
09:45 - 10:00 Break
10:00 - 10:45 Breakout Session
Communicating Risk to Remain Resilient
Hosted by Verizon

Phillip Larbey
Managing Principal & Head of Verizon's Threat Research Advisory Center EMEA
Verizon

Torstein Gimnes Are
CISO
Norsk Hydro

Mirela Bønløkke
Head of Cyber and Information Security & CISO
Rambøll

Marc Hofmann
Chief Security Officer
Nordea
Increased regulation is driving greater accountability in the boardroom to understand the cyber threat landscape and recognise and measure risk. Translating different forms of threat intelligence and risk into your business is critical to protecting the organisation and remaining compliant.
Join Verizon as they share insights on the 2024 DBIR publication and a panel discussion with CISOs on translating insights into practice.
In this session, you will learn how to:
- Frame risk as a business need to enhance leadership understanding of threat landscape
- Translate key findings of Verizon’s DBIR report into your IT security methodology
- Identify actions to reduce the gap in your board’s knowledge of threat intelligence
10:00 - 10:45 Executive Boardroom
Threat Intelligence and Third-Party Risk – Doubling Down on Critical Vulnerabilities
Hosted by RiskRecon, a Mastercard Company

Rigo Van den Broeck
EVP, Cyber Security Product Innovation
Mastercard

Peter Granlund
CISO
If P&C Insurance

Lars-Gunnar Marklund
CISO
Boliden

Kristoffer Sjöström
CSO
SEB
The complete entanglement of cyber risk with business risk is becoming increasingly visible. CISOs now have an opportunity to better pinpoint third parties that present a threat to the organisation. Yet the increasing complexities of third party, and even fourth party, risk management, prompted by a wide range of evolving threats, demands heightened attention. How can CISOs ensure they have a clear overview of the threat landscape and vulnerabilities across ecosystems and supply chains?
Join this session to discuss:
- Identification of vulnerabilities across your vendor landscape to prioritize response efforts
- Best practices for mitigating a new wave of sophisticated attacks to keep assets safe
- The role threat intelligence plays in risk management strategies to safeguard your digital ecosystem
*This session is for CISOs only*
10:45 - 11:50 Networking Break
10:55 - 11:45 Peer-to-Peer Meetings
Peer-to-Peer Meetings
Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.
11:50 - 12:35 Breakout Session
Breaking Through the Risk Haze of Vulnerabilities — Adopting Continuous Threat Exposure Management
Hosted by XM Cyber
Mike Heredia
Vice President EMEA
XM Cyber
82% of security leaders report an increase in the gap between the number of vulnerabilities/exposures in their environment and the ability to remediate them. This situation is becoming worse with every passing month and has created a big disconnect between Cyber Security and IT teams.
To remediate this disconnect and continually improve security posture, organisations are adopting the CTEM (Continuous Threat Exposure Management) framework that was introduced by Gartner.
Join this session and understand why and how to adopt the CTEM framework. Specifically, you will learn:
- Why this disconnect exists, and what the 5 steps to adopting CTEM are to reduce its impact
- How to reduce risk and increase efficiency with a comprehensive exposure management approach
- How to measure and report on security posture improvements to the board
11:50 - 12:35 Executive Boardroom
Creating Scalable Governance to Future-Proof AI in the Cloud
Hosted by Wiz

Bart van de Burgt
Regional VP, Central & Northern Europe
Wiz

Jacob Henricson
Head of IT Strategy and Security
Skanska

Jesper Laurin
CISO
Husqvarna Group
CISOs recognise the benefits of AI to stay in the innovation race for their organisations. According to Wiz, although 70% of organisations are using cloud-based managed AI services, many are still in the experimentation phase. CISOs must establish a robust governance programme to better support cloud-based AI tools. Ultimately, ensuring a more secure framework to protect assets within the cloud.
Join this session to discuss:
- Use cases to prioritise when getting started with cloud-based managed AI services
- Governance structures which outline AI usage whilst maintaining cloud security
- Policies which ensure data availability, integrity and confidentiality within the cloud
*This session is for CISOs only*
Apply to Participate
Apply to participate in the Nordic CISO Community Executive Summit.
Gartner facilitates exclusive, C-level communities by personally qualifying and understanding the priorities, challenges and interests of each member.
Our selective approach maintains the high quality of the network and ensures top-level discussions with peers from the world’s leading organizations.
Each application will be reviewed, and once your participation is confirmed, you will have access to year-round community programs.
Location
Venue & Accommodation
Elite Marina Tower, StockholmA block of rooms has been reserved at the Elite Marina Tower, Stockholm at a reduced conference rate. Reservations should be made online or by calling +46 855901746.
Deadline to book using the discounted room rate of kr1890 SEK (plus tax) is 22 April 2024.
Community Programme Managers
For inquiries related to this community, please reach out to your dedicated contacts.